search

cuckoosandbox / cuckoo

Cuckoo Sandbox is an automated dynamic malware analysis system
http://www.cuckoosandbox.org
Other
5.55k stars 1.71k forks source link

Cuckoo analysis getting completed but showing configuration error #2702

Open manufg opened 5 years ago

manufg commented 5 years ago

2019-03-28 14:44:15,795 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:16,809 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:17,823 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:18,831 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:19,842 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:20,852 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:21,859 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:22,868 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:23,882 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:24,895 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:25,903 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:26,910 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:27,917 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:28,925 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:29,947 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:30,955 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:31,963 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:32,970 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:33,977 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:34,985 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:35,995 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:37,003 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:38,105 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:39,113 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:40,185 [cuckoo.core.scheduler] ERROR: Error from machine 'sandbox-win7-01': it appears that this Virtual Machine hasn't been configured properly as the Cuckoo Host wasn't able to connect to the Guest. There could be a few reasons for this, please refer to our documentation on the matter: https://cuckoo.sh/docs/faq/index.html#troubleshooting-vm-network-configuration 2019-03-28 14:44:41,587 [cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer 2019-03-28 14:44:43,996 [cuckoo.machinery.virtualbox] INFO: Successfully generated memory dump for virtual machine with label sandbox-win7-01 to path /root/.cuckoo/storage/analyses/3/memory.dmp 2019-03-28 14:44:44,030 [cuckoo.machinery.virtualbox] DEBUG: Stopping vm sandbox-win7-01 2019-03-28 14:44:49,855 [cuckoo.core.scheduler] DEBUG: Released database task #3 2019-03-28 14:44:51,348 [cuckoo.core.plugins] DEBUG: Executed processing module "AnalysisInfo" for task #3 2019-03-28 14:44:51,428 [cuckoo.processing.behavior] WARNING: Analysis results folder does not exist at path '/root/.cuckoo/storage/analyses/3/logs'. 2019-03-28 14:44:51,491 [cuckoo.core.plugins] DEBUG: Executed processing module "BehaviorAnalysis" for task #3 2019-03-28 14:44:51,536 [cuckoo.core.plugins] DEBUG: Executed processing module "Dropped" for task #3 2019-03-28 14:44:51,538 [cuckoo.core.plugins] DEBUG: Executed processing module "DroppedBuffer" for task #3 2019-03-28 14:44:51,541 [cuckoo.processing.memory] ERROR: VM memory dump not found: to create VM memory dumps you have to enable memory_dump in cuckoo.conf! 2019-03-28 14:44:51,559 [cuckoo.core.plugins] DEBUG: Executed processing module "Memory" for task #3 2019-03-28 14:44:51,892 [cuckoo.core.plugins] DEBUG: Executed processing module "MetaInfo" for task #3 2019-03-28 14:44:51,931 [cuckoo.core.plugins] DEBUG: Executed processing module "ProcessMemory" for task #3 2019-03-28 14:44:52,015 [cuckoo.core.plugins] DEBUG: Executed processing module "Procmon" for task #3 2019-03-28 14:44:52,061 [cuckoo.core.plugins] DEBUG: Executed processing module "Screenshots" for task #3 2019-03-28 14:44:55,059 [cuckoo.core.plugins] DEBUG: Executed processing module "Static" for task #3 2019-03-28 14:44:55,109 [cuckoo.core.plugins] DEBUG: Executed processing module "Strings" for task #3 2019-03-28 14:44:55,137 [cuckoo.core.plugins] DEBUG: Executed processing module "TargetInfo" for task #3 2019-03-28 14:46:27,829 [cuckoo.core.plugins] DEBUG: Executed processing module "NetworkAnalysis" for task #3 2019-03-28 14:46:27,830 [cuckoo.core.plugins] DEBUG: Executed processing module "Extracted" for task #3 2019-03-28 14:46:27,830 [cuckoo.core.plugins] DEBUG: Executed processing module "TLSMasterSecrets" for task #3 2019-03-28 14:46:27,831 [cuckoo.processing.debug] ERROR: Error processing task #3: it appears that the Virtual Machine hasn't been able to contact back to the Cuckoo Host. There could be a few reasons for this, please refer to our documentation on the matter: https://cuckoo.sh/docs/faq/index.html#troubleshooting-vm-network-configuration 2019-03-28 14:46:28,221 [cuckoo.core.plugins] DEBUG: Executed processing module "Debug" for task #3 2019-03-28 14:46:28,221 [cuckoo.core.plugins] DEBUG: Running 0 signatures 2019-03-28 14:46:28,388 [cuckoo.core.plugins] DEBUG: Executed reporting module "JsonDump" 2019-03-28 14:46:28,771 [cuckoo.core.plugins] WARNING: The reporting module "SingleFile" returned the following error: The weasyprint library hasn't been installed on your Operating System and as such we can't generate a PDF report for you. You can install 'weasyprint' manually by running 'pip install weasyprint' or by compiling and installing package yourself.

The Cuckoo log is given above. What need to be done to get the configuration right.

SparkyNZL commented 5 years ago

Please read the error, it even explains how to fix it.

sent from my spaceship !

From: manufg notifications@github.com Sent: Thursday, March 28, 2019 11:19:17 PM To: cuckoosandbox/cuckoo Cc: Subscribed Subject: [cuckoosandbox/cuckoo] Cuckoo analysis getting completed but showing configuration error (#2702)

2019-03-28 14:44:15,795 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:16,809 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:17,823 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:18,831 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:19,842 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:20,852 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:21,859 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:22,868 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:23,882 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:24,895 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:25,903 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:26,910 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:27,917 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:28,925 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:29,947 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:30,955 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:31,963 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:32,970 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:33,977 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:34,985 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:35,995 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:37,003 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:38,105 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:39,113 [cuckoo.core.guest] DEBUG: sandbox-win7-01: not ready yet 2019-03-28 14:44:40,185 [cuckoo.core.scheduler] ERROR: Error from machine 'sandbox-win7-01': it appears that this Virtual Machine hasn't been configured properly as the Cuckoo Host wasn't able to connect to the Guest. There could be a few reasons for this, please refer to our documentation on the matter: https://cuckoo.sh/docs/faq/index.html#troubleshooting-vm-network-configuration 2019-03-28 14:44:41,587 [cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer 2019-03-28 14:44:43,996 [cuckoo.machinery.virtualbox] INFO: Successfully generated memory dump for virtual machine with label sandbox-win7-01 to path /root/.cuckoo/storage/analyses/3/memory.dmp 2019-03-28 14:44:44,030 [cuckoo.machinery.virtualbox] DEBUG: Stopping vm sandbox-win7-01 2019-03-28 14:44:49,855 [cuckoo.core.scheduler] DEBUG: Released database task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:44:51,348 [cuckoo.core.plugins] DEBUG: Executed processing module "AnalysisInfo" for task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:44:51,428 [cuckoo.processing.behavior] WARNING: Analysis results folder does not exist at path '/root/.cuckoo/storage/analyses/3/logs'. 2019-03-28 14:44:51,491 [cuckoo.core.plugins] DEBUG: Executed processing module "BehaviorAnalysis" for task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:44:51,536 [cuckoo.core.plugins] DEBUG: Executed processing module "Dropped" for task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:44:51,538 [cuckoo.core.plugins] DEBUG: Executed processing module "DroppedBuffer" for task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:44:51,541 [cuckoo.processing.memory] ERROR: VM memory dump not found: to create VM memory dumps you have to enable memory_dump in cuckoo.conf! 2019-03-28 14:44:51,559 [cuckoo.core.plugins] DEBUG: Executed processing module "Memory" for task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:44:51,892 [cuckoo.core.plugins] DEBUG: Executed processing module "MetaInfo" for task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:44:51,931 [cuckoo.core.plugins] DEBUG: Executed processing module "ProcessMemory" for task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:44:52,015 [cuckoo.core.plugins] DEBUG: Executed processing module "Procmon" for task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:44:52,061 [cuckoo.core.plugins] DEBUG: Executed processing module "Screenshots" for task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:44:55,059 [cuckoo.core.plugins] DEBUG: Executed processing module "Static" for task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:44:55,109 [cuckoo.core.plugins] DEBUG: Executed processing module "Strings" for task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:44:55,137 [cuckoo.core.plugins] DEBUG: Executed processing module "TargetInfo" for task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:46:27,829 [cuckoo.core.plugins] DEBUG: Executed processing module "NetworkAnalysis" for task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:46:27,830 [cuckoo.core.plugins] DEBUG: Executed processing module "Extracted" for task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:46:27,830 [cuckoo.core.plugins] DEBUG: Executed processing module "TLSMasterSecrets" for task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:46:27,831 [cuckoo.processing.debug] ERROR: Error processing task #3https://github.com/cuckoosandbox/cuckoo/issues/3: it appears that the Virtual Machine hasn't been able to contact back to the Cuckoo Host. There could be a few reasons for this, please refer to our documentation on the matter: https://cuckoo.sh/docs/faq/index.html#troubleshooting-vm-network-configuration 2019-03-28 14:46:28,221 [cuckoo.core.plugins] DEBUG: Executed processing module "Debug" for task #3https://github.com/cuckoosandbox/cuckoo/issues/3 2019-03-28 14:46:28,221 [cuckoo.core.plugins] DEBUG: Running 0 signatures 2019-03-28 14:46:28,388 [cuckoo.core.plugins] DEBUG: Executed reporting module "JsonDump" 2019-03-28 14:46:28,771 [cuckoo.core.plugins] WARNING: The reporting module "SingleFile" returned the following error: The weasyprint library hasn't been installed on your Operating System and as such we can't generate a PDF report for you. You can install 'weasyprint' manually by running 'pip install weasyprint' or by compiling and installing package yourself.

The Cuckoo log is given above. What need to be done to get the configuration right.

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHubhttps://github.com/cuckoosandbox/cuckoo/issues/2702, or mute the threadhttps://github.com/notifications/unsubscribe-auth/AQ_imH18y5Z70NwBCAYd8H6EMtAWepd_ks5vbJclgaJpZM4cPxiI.

xx-zhang commented 4 years ago

i have the same errror with you ,because of settings the wrong gateway.